Jeremiah Grossman: Real Live XSS

Thursday, September 21, 2006

Real Live XSS

Via Rsnake’s sla.ckers.org message board, XSS disclosures are in abundance! Dell, HP, MySpace, Photobucket, F5, Acunetix, and a slew of others are listed. Dark Reading has some timely coverage (“Hackers Reveal Vulnerable Websites”) with yours truly quoted. SEO Egghead has a funny PoC from a Harvard website (“Go to Princeton Instead! “) Most of the proof-of-concept XSS links appear safe enough to click on, but I don’t recommend it, just in case.

No comments:

BIO

Jeremiah Grossman brings 20+ years of experience in Computer Security and has become one of the most recognizable and world-renowned cybersecurity experts in the industry, coining several of the original hacking terms commonly used around the world today. Early in his career, Jeremiah was known as “The Hacker Yahoo” which led to his role as the company’s Information Security Officer. Jeremiah founded WhiteHat Security (now Synopsis), and served as Chief of Security Strategy for SentinelOne which was the highest-valued cybersecurity IPO in history. Most recently, Jeremiah was the founder & CEO of Bit Discovery, which was acquired by Tenable in 2022. He also serves as a company advisor and board member to several tech startups. In his spare time, Jeremiah does Brazilian Jiu-Jitsu and is passionate about classic cars. He recently opened Toybox, a luxury car club in Boise, Idaho.